Privacy Policy
Document last reviewed on . The English version governs this website; Finnish supervisory guidance may supplement these explanations where local law requires additional detail.
1. Data controller
The controller responsible for personal data processed through Plyxaronylozarin is:
Plyxaronylozarin
Eerikinkatu 17
20100 Turku
Finland
Contact channels published on the website for product questions are listed as plain text identifiers: info@plyxaronylozarin.world, contact@plyxaronylozarin.world, support@plyxaronylozarin.world, help@plyxaronylozarin.world. Use the channel that matches your request subject so your message reaches the correct internal team.
2. Primary geography and product topic
Processing relates to food supplements sold or described for retail customers, chiefly in Finland and wider EU or EEA markets where we offer delivery. The Molvo line is positioned solely in the food-supplement category under Finnish and EU food law, not as a medicine. We do not use personal data to profile health conditions or to target advertising that promises therapeutic outcomes.
3. Scope and purposes
We process personal data to operate the online shop for Molvo and related food supplements, to fulfil contracts you enter with us, to meet accounting and tax obligations, to respond to lawful requests from authorities, and to improve website reliability where you consent to optional analytics or measurement pixels tied to advertising. We do not sell personal data as a separate commodity.
4. Categories of data
- Identity and contact data you type into forms (for example name, email address, optional phone number, message text).
- Order data such as delivery address, chosen products, and payment references supplied by payment providers.
- Technical data from your browser connection, including IP address, device type, approximate region from network routing, and security logs.
- Cookie identifiers if you accept non-essential cookies as described in the Cookie Policy.
- Records of communications with customer support for quality and dispute handling.
5. Lawful bases (GDPR Article 6)
| Processing activity | Lawful basis |
|---|---|
| Order fulfilment and payment reconciliation | Performance of a contract; legal obligation for invoicing records |
| Responding to contact form messages | Legitimate interest in assisting customers; consent where you tick a specific box |
| Optional analytics or marketing cookies | Consent, which you may withdraw at any time without affecting essential functions |
| Aggregated ad delivery reporting with platforms such as Google Ads | Consent for marketing or analytics cookies; legitimate interest for fraud signals received from the platform where separate from profiling |
| Fraud checks and server security | Legitimate interest in securing systems; legal obligations where criminal law applies |
6. Retention
Accounting documents are kept for the duration mandated by Finnish commercial and tax law, currently up to ten years for relevant ledgers unless a shorter period applies to a specific document type. Marketing consents and cookie consent logs are kept until you withdraw consent and for an additional short audit period. Contact form copies may be deleted within twenty-four months after the last meaningful reply unless a dispute requires longer retention. Server security logs rotate automatically, typically within ninety days, unless an incident investigation extends storage with documented justification.
7. Recipients and processors
We use infrastructure providers, payment service providers, email delivery tools, and analytics partners who process data under written agreements that require GDPR-level safeguards. A list of main processor categories is available on request. If data is transferred outside the European Economic Area, we rely on Standard Contractual Clauses or other mechanisms recognised by the European Commission.
8. Security measures
We apply transport encryption for connections, role-based access controls for internal accounts, patching routines for public-facing systems, and monitoring for abnormal traffic. No online transmission is completely risk-free; you should keep devices and passwords safe when accessing your inbox where we might send order updates.
9. Your rights
Under the GDPR and national Finnish law you may request access, rectification, erasure, restriction, portability where technically feasible, and objection where processing relies on legitimate interests. You may withdraw consent for optional processing at any time. Complaints may be filed with the Office of the Data Protection Ombudsman in Finland if you believe processing infringes the law.
10. Children
Services are aimed at adults. We do not knowingly collect data from minors without verifiable parental authority; if you believe we received a minor’s data, please contact us so we can delete it promptly.
11. Updates
We adjust this Privacy Policy when practices or legal requirements change. Material changes will be highlighted near the top of the document for a reasonable period after publication. Continued use after notice may constitute acceptance where the law allows.